NetWitness Platform vs SolarWinds Security Event Manager comparison

NetWitness and SolarWinds are both solutions in the Security Information and Event Management (SIEM) category. NetWitness is ranked #37 with an average rating of 8.0, while SolarWinds is ranked #33 with an average rating of 7.7. NetWitness holds a 1.0% mindshare in SIEM, compared to SolarWinds’s 1.0% mindshare. Additionally, 75% of NetWitness users are willing to recommend the solution, compared to 82% of SolarWinds users who would recommend it.

NetWitness Platform

Read 36 NetWitness Platform reviews

4,345 Views
2,433 Comparison Views

75% willing to recommend

SolarWinds Security Event M...

Read 27 SolarWinds Security Event Manager reviews

3,049 Views
2,927 Comparison Views

82% willing to recommend

NetWitness Platform

SolarWinds Security Event M...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jun 3, 2026

NetWitness Platform and SolarWinds Security Event Manager compete in security event management tools. NetWitness has an edge with its data analytics features and robust threat detection capabilities.

Features: NetWitness Platform provides advanced threat hunting, comprehensive analytics, and incident management, enabling strong security oversight. SolarWinds Security Event Manager is known for simplified log management, real-time correlation capabilities, and intuitive navigation, streamlining security processes.

Room for Improvement: NetWitness could enhance its user interface, streamline deployment processes, and improve region-specific support. SolarWinds Security Event Manager might benefit from enhanced customizability, integration capabilities with third-party tools, and a more advanced alerting system.

Ease of Deployment and Customer Service: SolarWinds Security Event Manager is praised for easy deployment and accessible customer service, ideal for smaller teams without extensive IT resources. NetWitness Platform, while offering advanced features, may require a more technical deployment process due to its comprehensive capabilities.

Pricing and ROI: NetWitness Platform has a higher initial setup cost due to its advanced functionalities, offering potential ROI for organizations demanding deep analytics. Meanwhile, SolarWinds Security Event Manager offers lower upfront costs and a quicker ROI, appealing to small businesses or budget-conscious environments.

To learn more, read our detailed NetWitness Platform vs. SolarWinds Security Event Manager Report (Updated: June 2026).

Buyer's Guide

NetWitness Platform vs. SolarWinds Security Event Manager

June 2026

Download the complete report

Helped 900,747 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

NetWitness Platform

Ranking in Security Information and Event Management (SIEM)

37th

Average Rating

7.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Log Management (37th)

SolarWinds Security Event M...

Ranking in Security Information and Event Management (SIEM)

33rd

Average Rating

7.8

Reviews Sentiment

5.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of June 2026, in the Security Information and Event Management (SIEM) category, the mindshare of NetWitness Platform is 1.0%, up from 0.6% compared to the previous year. The mindshare of SolarWinds Security Event Manager is 1.0%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM) Mindshare Distribution
Product	Mindshare (%)
SolarWinds Security Event Manager	1.0%
NetWitness Platform	1.0%
Other	98.0%

Security Information and Event Management (SIEM)

Featured Reviews

reviewer2256927

Head of Information Security, Cyber Defense and IT Risk Management at HCT. at a transportation company with 201-500 employees

A solid SIEM solution that should improve technical support and online resources to be easier to use

A big problem with the product is that we don't have much professional experience in Israel installing, implementing, and integrating this product. There is not enough of a knowledge base. There is no support for this product in this country, so problems have to be resolved through global technical teams. We like to work locally because of the language, and when the product is only supported outside the country, it's a little difficult to implement and use this product. Moreover, AI is something that must be added immediately. Artificial intelligence is a part of the competitors' products, and it's not been implemented for us.

Read full review

Yashokanth Partkunan

Managed Services Engineer at Loop1 Systems

Has supported client needs efficiently but requires deeper analysis features and faster support

The log analyzing capability of SolarWinds Security Event Manager should go into more depth than the current environment. More modification and enhancements are required on the dashboard side in order to make it closer to optimal performance. From observation and feedback from users, they need more functionality related to monitoring, and in-depth analyzing needs to be improved.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Offers a good wireless feature."

"Packet Solution: Allows analyst proactive hunting and alerting on daily sophisticated APTs."

"NetWitness Platform is valuable for creating rules that the solution must detect."

"Thanks to this tool, we have a small SOC running in our company."

"The most valuable features are the threat prediction and network forensics."

"The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it."

"Since the solution has been under way we have seen a large decrease of threats and proactive reactions to incidents."

"The most valuable features are the packet decoder, log decoder, and concentrator."

More NetWitness Platform pros

"SolarWinds Security Event Manager has been generally working well."

"The most valuable feature of the solution is intuitivity of navigation; it's easy to build rules and actions which are based on the logs and event types we collect with the software."

"The pricing was low, around 30K so ROI is less than one year."

"User-friendly configuration is key, and the configurations are simple, not complex."

"SolarWinds is easy to configure, and it provides timely alerts."

"The most valuable feature is the ease of use for the end user."

"The most valuable feature of this solution is the visibility into both attempted and failed logins."

"We were suffering from a lack of visibility into our logs, so we implemented SolarWinds LEM."

More SolarWinds Security Event Manager pros

Cons

"One thing to be improved in NetWitness is the capability to correlate event logs in a general sense."

"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."

"The initial setup is complex. It requires some knowledge in order to set it up."

"I am not happy with the RSA support. Sometimes they can be really annoying because it takes so long to get the support that you need."

"I believe that integrating the solution with other products such as Oracle would be beneficial."

"The initial setup is very complex and should be simplified."

"RSA NetWitness Logs and Packets is far behind the competition."

"The solution should have more integration capabilities with different platforms."

More NetWitness Platform cons

"The flash-based interface can be improved because sometimes, the speed of monitoring is reduced."

"We need to post events on the end of the devices. Sometimes, the event does not respond."

"The main area that would mean a big improvement for me would be for the product to include multiple dashboards."

"The company had to use a third party for the implementation of the solution."

"The product should improve the ease with which you can create event alerts. They are not as hard now but you need to have an easier way."

"Under the new system, it is not upgradable the way they say. When you try to do an upgrade, it doesn't really work unless you dump everything and start from scratch. You lose a lot of your nodes. Whenever you set your nodes up and everything else, they don't want to bring those nodes back in, so you have to really go back and restructure all your nodes. I went from version 6.5 to version 6.6 and then to version 6.7. I then went to version 2019, and now it is version 2020. It would be good if we can upgrade without having to delete everything and start from scratch. They can maybe build more KPIs and other things for the dashboard. Some of the other systems already have built-in KPIs. SolarWinds is starting to catch up, but it is not there yet. They can include some of the business or industry standards for tracking the time, that is, the meantime to detect (MTTD) and the meantime to resolve (MTTR). They can also find a way to build a KPI that measures the number of instances of port scans experienced in a week or a month."

"I imagine we will have to develop our own reports soon, this seems to be more cumbersome."

"It takes a long time to perform a root cause analysis."

More SolarWinds Security Event Manager cons

Pricing and Cost Advice

"It is cheap."

"The licenses are good but the cost is very expensive."

"Compared to the competition, the is price is not that high."

"RSA NetWitness Logs and Packets do not have a subscription model, it's a one-time purchase. There is only a perpetual license."

"We are on an annual license for the use of the solution."

"The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."

"It’s cheaper to run virtual machines in a VMware environment."

"The product price was reasonable for my region and the market."

More NetWitness Platform pricing and cost advice

"Licenses can only be purchased in blocks of fifty at a time."

"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."

"Licensing is on devices, so if you have many, then this may be high."

"The pricing model would benefit from having package deals with other SolarWinds products."

"The price of SolarWinds Security Event Manager is reasonable."

"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."

"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

900,747 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees

Feb 26, 2015

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…

Read full review

Top Industries

By visitors reading reviews

Financial Services Firm

12%

Construction Company

11%

Comms Service Provider

Outsourcing Company

Financial Services Firm

14%

Construction Company

13%

Manufacturing Company

11%

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	7
Large Enterprise	20

By reviewers
Company Size	Count
Small Business	19
Midsize Enterprise	3
Large Enterprise	7

Questions from the Community

What is your experience regarding pricing and costs for NetWitness Platform?

The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.

See all answers

What needs improvement with NetWitness Platform?

There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.

See all answers

What is your primary use case for NetWitness Platform?

I use NetWitness Platform ( /products/netwitness-platform-reviews ) in the financial industry as a good product with excellent capabilities and integration with various devices.

See all answers

What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?

The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.

See all answers

What needs improvement with SolarWinds Security Event Manager ?

See all answers

What is your primary use case for SolarWinds Security Event Manager ?

I work with all SolarWinds products mostly, including Network Configuration Manager and NPM. I am a reseller. I usually recommend SolarWinds products for Loop1. It's for the bigger ones; we are the...

See all answers

Comparisons

Splunk Enterprise Security vs NetWitness Platform

Compared 7% of the time

IBM Security QRadar vs NetWitness Platform

Compared 7% of the time

Palo Alto Networks WildFire vs NetWitness Platform

Compared 5% of the time

Idira Privileged Access Manager vs NetWitness Platform

Compared 4% of the time

RSA enVision vs NetWitness Platform

Compared 4% of the time

More NetWitness Platform Competitors

Splunk Enterprise Security vs SolarWinds Security Event Manager

Compared 11% of the time

IBM Security QRadar vs SolarWinds Security Event Manager

Compared 8% of the time

ManageEngine Log360 vs SolarWinds Security Event Manager

Compared 5% of the time

Sumo Logic Security vs SolarWinds Security Event Manager

Compared 5% of the time

Wazuh vs SolarWinds Security Event Manager

Compared 4% of the time

More SolarWinds Security Event Manager Competitors

Product Reports

Buyer's Guide

NetWitness Platform

June 2026

Download NetWitness Platform product report

Buyer's Guide

SolarWinds Security Event Manager

May 2026

SolarWinds Security Event Manager report

Download SolarWinds Security Event Manager product report

Also Known As

RSA Security Analytics

SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager

Overview

NetWitness Platform provides seamless threat intelligence integration and robust log/packet ingestion. It enhances network visibility and incident management through automated threat detection, ideal for enterprises seeking scalability and security intelligence.

NetWitness Platform offers a comprehensive suite of tools designed to tackle security challenges within Security Operations Centers. It integrates data from endpoints, networks, and other sources, ensuring in-depth security analysis. By supporting features like XDR and UEBA, it grants a unified view of security events. Its capabilities extend to threat hunting, malware analysis, and network forensics, assisting organizations in managing incidents, ensuring compliance with regulations like GDPR, and detecting cyber threats. Users appreciate its ease of deployment, flexibility, and threat prediction capabilities, although improvements in integration, documentation, and AI are desired.

What are the key features of NetWitness Platform?

User-friendly Interface: Simplifies security monitoring and management.
Threat Intelligence Integration: Provides seamless access to threat data.
Log/Packet Ingestion and Alerting: Enhances detection and response.
Network Visibility: Improves threat detection across networks.
Incident Management: Streamlines response to security incidents.
Automated Threat Detection: Facilitates quick identification of threats.
Custom Connectors: Allows for tailored integrations.
Advanced Dashboarding and Reporting: Offers detailed insights.
Packet/Incident Correlation: Enhances understanding of threats.

What benefits can users expect when evaluating NetWitness Platform?

Threat Prediction: Anticipates potential vulnerabilities.
Ease of Use: Streamlines user experience.
Deployment Flexibility: Adapts to organizational structure.
Scalability: Supports growing security infrastructure needs.
Security Intelligence: Enhances awareness and response capabilities.

In finance and health sectors, NetWitness Platform aids significantly by providing comprehensive threat analysis, ensuring compliance, and facilitating rapid incident management. Enterprises in these industries benefit by maintaining robust security postures and meeting regulatory demands.

NetWitness

SolarWinds Security Event Manager is recognized for its ease of use, offering efficient log monitoring and a user-friendly interface. The tool supports a range of monitoring functions and provides strong security capabilities across platform configurations.

Designed for comprehensive log analysis and security event monitoring, SolarWinds Security Event Manager provides robust reporting, timely alerts, and supports file integrity monitoring. Entities use it to ensure compliance, monitor network activities, and prevent threats such as ransomware. Integration and setup are straightforward, enhancing its flexibility for centralized log collection and analysis. While the tool is effective, improvements are needed in performance scaling, interface updates from Flash, and enhanced customization and reporting options.

What are the key features of SolarWinds Security Event Manager?

Log Monitoring: Tracks and analyzes log files for security events.
File Integrity Monitoring: Detects unauthorized changes in files.
Reporting and Alerts: Provides extensive reporting with timely security alerts.
Compliance Maintenance: Assists in maintaining compliance with audit standards.
User-Friendly Interface: Features intuitive navigation and versatile integration capabilities.

What benefits should users consider when evaluating SolarWinds Security Event Manager?

Ease of Use: Intuitive setup and navigation simplify user experience.
Security Enhancements: Strong monitoring helps detect and prevent ransomware threats.
Compliance Support: Ensures compliance with audit requirements, facilitating regulatory adherence.
Integration: Seamlessly connects with other tools for centralized data management.

Industries such as financial services, healthcare, and government often implement SolarWinds Security Event Manager to monitor sensitive information, ensure adherence to regulatory compliance, and manage network security efficiently. The tool's ability to analyze logs and prevent threats makes it valuable for businesses needing robust security event management.

SolarWinds

Sample Customers

Los Angeles World Airports, Reply

NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.

Buyer's Guide

NetWitness Platform vs. SolarWinds Security Event Manager

June 2026

Free Report: NetWitness Platform vs. SolarWinds Security Event Manager

Find out what your peers are saying about NetWitness Platform vs. SolarWinds Security Event Manager and other solutions. Updated: June 2026.

DOWNLOAD NOW

900,747 professionals have used our research since 2012.

See our NetWitness Platform vs. SolarWinds Security Event Manager report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.